sandbox icon indicating copy to clipboard operation
sandbox copied to clipboard

Published 20 hours ago verified publisher icon cds-hooks

fhirAuthorization.expires_in is required field

Open yashaskram opened this issue 6 years ago • 3 comments

When launching sandbox app through HSPC, fhirAuthorization populates fine but missing expires_in field.

"fhirAuthorization": {
    "access_token": "ey..",
    "token_type": "Bearer",
    "scope": "patient/*.* user/*.* launch openid profile online_access",
    "subject": "48163c5e-88b5-4cb3-92d3-23b800caa927"
  },

The sandbox code sets the expires_in based on the expires_in smart launch token response but looks like HSPC is not sending expires_in value when launching sandbox as SOF app. Not sure if this is the right place to post this given this is related to HSPC sandbox. But also wondering if the sandbox code should catch this

yashaskram avatar Oct 18 '18 14:10 yashaskram

Thanks for logging this @yashaskram. I've logged https://healthservices.atlassian.net/browse/SNDBX-875 to the HSPC group to fix this on their end.

I agree it would be good for us to validate this in the CDS Hooks Sandbox as well.

kpshek avatar Oct 18 '18 19:10 kpshek

@yashaskram - Jacob over at HSPC was fantastic and deployed a change to their authorization server and now the expires_in field is being returned. I've confirmed this in the CDS Hooks Sandbox as well.

We can leave this issue open as I agree with you that it would be good for us to put in some validation to ensure that the expires_in field is always set.

kpshek avatar Oct 19 '18 14:10 kpshek

Great. thx @kpshek and Jacob

yashaskram avatar Oct 25 '18 17:10 yashaskram